Mandriva Linux Security Advisory : unzip (MDVSA-2015:123)
High Nessus Plugin ID 82376
SynopsisThe remote Mandriva Linux host is missing a security update.
DescriptionUpdated unzip package fix security vulnerabilities :
The unzip command line tool is affected by heap-based buffer overflows within the CRC32 verification (CVE-2014-8139), the test_compr_eb() (CVE-2014-8140) and the getZip64Data() (CVE-2014-8141) functions. The input errors may result in in arbitrary code execution. A specially crafted zip file, passed to the command unzip -t, can be used to trigger the vulnerability.
OOB access (both read and write) issues also exist in test_compr_eb() that can result in application crash or other unspecified impact. A specially crafted zip file, passed to the command unzip -t, can be used to trigger the issues.
SolutionUpdate the affected unzip package.